$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/50Dt_MiIXZ-Ii6guJro8hi_D-mA.roa File: 50Dt_MiIXZ-Ii6guJro8hi_D-mA.roa (raw, json) Hash identifier: zgimVU4paUqD9EXvJMBOXR+QMd8dejTlp6f0idcQ7pg= Subject key identifier: E7:40:ED:FC:C8:88:5D:9F:88:8B:A8:2E:26:BA:3C:86:2F:C3:FA:60 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D6C Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/50Dt_MiIXZ-Ii6guJro8hi_D-mA.roa Signing time: Mon 26 Aug 2024 05:19:47 +0000 ROA not before: Mon 26 Aug 2024 05:19:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131602 IP address blocks: 211.78.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3436 (0xd6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E740EDFCC8885D9F888BA82E26BA3C862FC3FA60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:14:77:df:59:4f:6f:4d:d7:04:7a:be:10:dc: 58:9b:10:2d:01:7c:d5:25:ed:99:37:e5:60:d9:46: 90:cd:88:3e:a1:87:f9:2d:b8:cb:d3:8f:22:2d:2b: f4:1f:96:a1:ad:5d:4e:7f:51:5b:ff:b6:47:06:b5: 93:3d:68:0f:53:45:4f:d2:15:85:20:1a:7e:fd:e8: cb:bd:8d:93:cd:c4:af:ab:3d:8b:fb:61:19:e8:98: 7f:ae:a5:4d:bd:83:99:80:d9:9a:77:a1:89:37:06: 0a:3d:15:8e:91:36:95:80:c7:b0:a7:ba:5c:c6:08: f1:14:92:12:5e:c3:86:aa:6f:5f:40:f5:5f:22:ec: a9:57:ed:89:3f:90:7a:e3:16:6d:66:c1:71:b9:4a: 60:46:5c:86:5a:4c:cd:81:8f:06:86:27:eb:7d:72: 7b:6d:1b:98:8b:56:04:2c:f9:7c:67:ed:0f:89:8e: c7:a6:6d:1e:17:ec:64:11:28:0a:ce:ad:34:57:e3: dc:a7:4a:02:b6:19:fb:d6:fd:d8:16:1d:9c:57:98: 7c:df:ef:4e:48:6a:98:53:90:83:bf:17:5a:38:c4: 90:74:cb:b4:bc:31:d9:b9:12:99:b4:cc:74:f2:8c: 84:92:5e:e0:b5:e0:8b:7d:86:40:c6:4f:93:9a:ea: 7f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:40:ED:FC:C8:88:5D:9F:88:8B:A8:2E:26:BA:3C:86:2F:C3:FA:60 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/50Dt_MiIXZ-Ii6guJro8hi_D-mA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.4.0/22 Signature Algorithm: sha256WithRSAEncryption 32:8b:d1:1f:da:66:21:a4:1e:82:f8:2a:49:ce:4c:33:a9:70: ff:ec:45:11:c3:da:c8:d2:15:a4:f8:d7:61:90:79:fb:69:72: af:fa:88:b4:1b:f5:4a:cd:79:e8:33:cf:89:ce:e3:3f:12:49: f3:4d:e0:5d:a8:fd:9f:e0:41:e9:62:87:e8:6a:41:11:60:26: a6:58:57:24:ec:96:f7:31:06:92:8c:a5:30:21:af:10:e8:1e: bd:18:eb:8e:2e:78:75:ab:46:7e:4d:d6:49:2b:52:4c:56:e3: a9:a4:84:2e:ae:7d:0a:08:93:a1:46:a2:1d:cb:a3:6e:bf:e4: a0:49:c0:5f:68:a6:f0:9f:69:f6:85:f4:70:01:03:51:fc:56: 2b:17:e5:5f:16:76:62:82:20:31:cc:26:8d:11:25:32:8f:38: 84:e2:8d:03:ca:1f:91:8e:40:0d:79:a5:0f:f3:ed:28:cd:72: dc:77:8e:ed:75:07:d3:a2:68:6c:23:c2:bd:ed:c2:1f:d4:a8: fa:ef:24:77:26:6b:53:05:59:4c:71:2a:3e:85:61:1e:d4:18: a1:40:59:fd:21:36:ef:77:cd:32:29:a9:f2:68:b1:ec:5d:26: 56:d9:60:94:1b:47:4d:23:95:c4:7b:a7:bf:28:e6:90:ef:07: 27:7f:42:55 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU3NDBFREZDQzg4ODVE OUY4ODhCQTgyRTI2QkEzQzg2MkZDM0ZBNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4FHffWU9vTdcEer4Q3FibEC0BfNUl7Zk35WDZRpDNiD6hh/kt uMvTjyItK/QflqGtXU5/UVv/tkcGtZM9aA9TRU/SFYUgGn796Mu9jZPNxK+rPYv7 YRnomH+upU29g5mA2Zp3oYk3Bgo9FY6RNpWAx7CnulzGCPEUkhJew4aqb19A9V8i 7KlX7Yk/kHrjFm1mwXG5SmBGXIZaTM2BjwaGJ+t9cnttG5iLVgQs+Xxn7Q+Jjsem bR4X7GQRKArOrTRX49ynSgK2GfvW/dgWHZxXmHzf705IaphTkIO/F1o4xJB0y7S8 Mdm5Epm0zHTyjISSXuC14It9hkDGT5Oa6n8ZAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU50Dt/MiIXZ+Ii6guJro8hi/D+mAwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzUwRHRfTWlJWFotSWk2Z3VKcm84aGlf RC1tQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALTTgQwDQYJ KoZIhvcNAQELBQADggEBADKL0R/aZiGkHoL4KknOTDOpcP/sRRHD2sjSFaT412GQ eftpcq/6iLQb9UrNeegzz4nO4z8SSfNN4F2o/Z/gQelih+hqQRFgJqZYVyTslvcx BpKMpTAhrxDoHr0Y644ueHWrRn5N1kkrUkxW46mkhC6ufQoIk6FGoh3Lo26/5KBJ wF9opvCfafaF9HABA1H8VisX5V8WdmKCIDHMJo0RJTKPOITijQPKH5GOQA15pQ/z 7SjNctx3ju11B9OiaGwjwr3twh/UqPrvJHcma1MFWUxxKj6FYR7UGKFAWf0hNu93 zTIpqfJosexdJlbZYJQbR00jlcR7p78o5pDvByd/QlU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org